Loading ...

Play interactive tourEdit tour

Windows Analysis Report https://onedrive.live.com/view.aspx?resid=6D19EDE7FC50E305!4688&ithint=onenote%2c&wdo=2&authkey=!AmkKdVYlk0odzic

Overview

General Information

Sample URL:https://onedrive.live.com/view.aspx?resid=6D19EDE7FC50E305!4688&ithint=onenote%2c&wdo=2&authkey=!AmkKdVYlk0odzic
Analysis ID:452260
Infos:

Most interesting Screenshot:

Detection

HTMLPhisher
Score:80
Range:0 - 100
Whitelisted:false
Confidence:100%

Signatures

Antivirus / Scanner detection for submitted sample
Antivirus detection for URL or domain
Phishing site detected (based on shot template match)
Yara detected HtmlPhish10
Yara detected HtmlPhish7
Found iframes
HTML body contains low number of good links
HTML title does not match URL
Suspicious form URL found

Classification

Process Tree

  • System is w10x64
  • chrome.exe (PID: 5456 cmdline: 'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized --enable-automation 'https://onedrive.live.com/view.aspx?resid=6D19EDE7FC50E305!4688&ithint=onenote%2c&wdo=2&authkey=!AmkKdVYlk0odzic' MD5: C139654B5C1438A95B321BB01AD63EF6)
    • chrome.exe (PID: 5668 cmdline: 'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1576,16472128031194999999,11831640320228879507,131072 --lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1700 /prefetch:8 MD5: C139654B5C1438A95B321BB01AD63EF6)
    • chrome.exe (PID: 6276 cmdline: 'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1576,16472128031194999999,11831640320228879507,131072 --lang=en-US --service-sandbox-type=audio --enable-audio-service-sandbox --mojo-platform-channel-handle=5348 /prefetch:8 MD5: C139654B5C1438A95B321BB01AD63EF6)